Design Preview: Copilot Access Controls for AI

If you’ve been following our Copilot plugin, you may have noticed the recent addition of capabilities for managing multiple bots/LLMs. It’s not in our official plugin release yet, but this update makes it possible to configure bots with different LLMs for specific purposes.

We are in the early stages of designing further enhancements to multi-bot configuration that will enable access controls for each bot. Our aim is to give admins more control over user access to LLMs and the data the LLMs have access to. This will offer the ability to create multiple bots with specific purposes that will only be available to specific users. For example, you could have a general-purpose AI bot for your team, but you need to block HR channel data or HR team members from using it due to sensitive data and conversations. You could also have a bot that is tied to a local LLM that has wider access to users and content in the system with no concerns about data leaving your organization.

These new settings would replace the current ‘user restrictions’ settings in the existing plugin.

User access control options

For user-based access controls, a new set of options is available. Admins can allow access for all users, allow only selected users, or block selected users.

Allowing specific users

When ‘Allow selected users’ is chosen, a field displays for admins to enter individual users, LDAP groups, or entire Mattermost teams. Once saved, these users or groups will be the only ones allowed to access this bot.

Blocking specific users

When ‘Block selected users’ is chosen, a similar field displays for admins to enter users, LDAP groups, or teams. Once saved, these users will be the blocked from using this bot. All other users will be able to access the bot.

Channel access options

With these proposed updates, we will also provide control for the LLM’s access to channels. Admins can allow all channels to be accessible, allow only selected channels, or block selected channels.

Allowing specific channels

When ‘Allow specific channels’ is chosen, a field displays for admins to enter individual channels or entire Mattermost teams. Once saved, these channels will be the only ones allowed to access this bot. Data from all other channels will not be accessible to the LLM.

Blocking specific channels

When ‘Block selected channels’ is chosen, a field displays for admins to enter individual channels or entire Mattermost teams. Once saved, data from these channels will not be accessible to this LLM. Data from all other channels will be accessible to the bot.

What do you think about this capability?

Would this suit your organization’s needs for AI access control in Mattermost? What would you like to see? Drop us a line here in this forum post and let us know what you think. We are validating this concept with customers and users so all feedback helps us solidify the solution.